Skip to Main Content
The Cybersecurity Guide to Governance, Risk, and Compliance
book

The Cybersecurity Guide to Governance, Risk, and Compliance

by Jason Edwards, Griffin Weaver
May 2024
Intermediate to advanced content levelIntermediate to advanced
672 pages
22h 23m
English
Wiley
Content preview from The Cybersecurity Guide to Governance, Risk, and Compliance

CHAPTER 10Risk Assessments

“Cyber risk assessments are the Sherlock Holmes of the digital world, helping us uncover hidden vulnerabilities and thwart cyber villains before they strike.”

Risk assessments are a key building block in establishing a strong cybersecurity program. Risk assessments' function, application, and significance in cybersecurity must be understood thoroughly. This involves grasping basic concepts and types of risk assessments and the varied regulatory perspectives on them. Valuable insights can be gleaned from exploring the viewpoints of the Federal Financial Institutions Examination Council (FFIEC), the National Institute of Standards and Technology (NIST), and third‐party frameworks like Factor Analysis of Information Risk (FAIR), Risk IT, and Operationally Critical Threat, Asset, and Vulnerability Evaluation (OCTAVE). Practical advice on performing a cybersecurity risk assessment, handling risks related to third parties, and tackling common challenges in risk assessments is essential. Given the ever‐evolving cybersecurity landscape, risk assessments' critical role and future implications should not be underestimated.

THE IMPORTANCE OF RISK ASSESSMENTS

Risk assessment is a fundamental process that helps organizations identify, analyze, and evaluate risks affecting their critical functions and information. It is a proactive approach that acts as the first line of defense against cyber threats, allowing organizations to anticipate and mitigate risks ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Cybersecurity Risk Management

Cybersecurity Risk Management

Cynthia Brumfield, Brian Haugli

Publisher Resources

ISBN: 9781394250196Purchase Link